Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/s77RTpv6O9tHtJxKlR99oPW32gQ.roa
File: s77RTpv6O9tHtJxKlR99oPW32gQ.roa (raw, json)
Hash identifier: YFyezEJPdvI1bMxPk+UlNyyYaVVBF3OW3M0IebXk/t8=
Subject key identifier: B3:BE:D1:4E:9B:FA:3B:DB:47:B4:9C:4A:95:1F:7D:A0:F5:B7:DA:04
Certificate issuer: /CN=68e95817406095ec7cb5c7b286b11333497b9451
Certificate serial: 0188E97BC6C716AD3D0F47F122B2C50AE491
Authority key identifier: 68:E9:58:17:40:60:95:EC:7C:B5:C7:B2:86:B1:13:33:49:7B:94:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aOlYF0Bglex8tceyhrETM0l7lFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/s77RTpv6O9tHtJxKlR99oPW32gQ.roa
Signing time: Fri 23 Jun 2023 18:19:42 +0000
ROA not before: Fri 23 Jun 2023 18:19:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204877
IP address blocks: 91.208.31.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:e9:7b:c6:c7:16:ad:3d:0f:47:f1:22:b2:c5:0a:e4:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68e95817406095ec7cb5c7b286b11333497b9451
Validity
Not Before: Jun 23 18:19:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b3bed14e9bfa3bdb47b49c4a951f7da0f5b7da04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:1a:77:a1:4a:9f:1b:1b:e0:4c:9f:42:7c:06:
b1:e8:54:93:cc:d8:bc:48:8d:3b:6a:f0:92:36:bc:
3a:b5:39:b0:21:cb:66:65:3d:f9:eb:7a:cf:b5:9b:
27:13:69:81:cf:5a:49:07:c8:64:c4:2c:e3:2e:51:
f6:aa:1c:1e:b7:34:8b:80:7a:8c:be:dc:16:4e:fa:
7f:b9:99:34:8f:04:d4:ca:7c:d4:e5:bc:68:bb:3d:
61:a1:63:34:8f:90:85:10:ee:dc:c9:23:8d:67:40:
c7:d7:9d:41:c6:fc:45:4c:29:c9:22:6f:95:1f:79:
3a:9f:fa:2a:5a:0b:b7:3f:74:a9:a3:9b:c8:84:ce:
fa:3f:d4:cc:0f:de:56:f1:0b:7e:da:ca:d1:e5:d3:
5d:a8:3e:37:02:da:dc:1b:d4:15:b2:37:e4:74:dc:
93:cf:33:83:71:34:21:d7:df:95:95:a0:aa:d1:0b:
89:3a:a1:8c:1d:63:fd:37:f9:2f:a9:19:6c:f8:58:
91:31:f2:e3:bf:8d:4e:c3:3c:ec:8d:46:2c:80:12:
ea:47:71:4b:b7:1b:fe:e9:96:e2:e0:97:53:4a:6b:
c8:99:70:49:d1:49:f5:f6:ad:44:68:ea:ff:a7:52:
87:73:66:84:36:43:16:8e:20:c6:97:ca:8e:b3:f1:
86:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:BE:D1:4E:9B:FA:3B:DB:47:B4:9C:4A:95:1F:7D:A0:F5:B7:DA:04
X509v3 Authority Key Identifier:
keyid:68:E9:58:17:40:60:95:EC:7C:B5:C7:B2:86:B1:13:33:49:7B:94:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aOlYF0Bglex8tceyhrETM0l7lFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/s77RTpv6O9tHtJxKlR99oPW32gQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/aOlYF0Bglex8tceyhrETM0l7lFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.31.0/24
Signature Algorithm: sha256WithRSAEncryption
13:96:15:8d:64:2e:cd:4a:80:a5:30:7f:17:f8:90:b7:b5:43:
70:bd:09:cc:da:e9:d1:3f:1b:b2:05:07:35:2f:29:08:e8:7c:
41:30:7d:6f:bb:e1:70:37:5b:58:d5:91:e4:11:e8:77:ea:eb:
f6:51:8c:23:2a:d8:df:9b:b8:75:07:fa:41:9b:e6:ed:f4:92:
e5:de:d5:3c:f0:d1:ad:19:e5:2a:52:d0:c3:fa:07:39:fc:c2:
2b:0c:63:16:68:30:91:27:87:58:84:43:eb:67:d8:ee:2c:ce:
d3:99:06:58:87:5c:d3:25:08:30:6c:89:32:cb:9a:57:6d:b1:
97:c4:2b:5a:f4:4b:e6:f1:09:32:e4:6d:1f:67:0f:34:0c:c6:
87:cb:c3:af:85:06:14:90:bd:62:3a:50:6f:83:67:e9:83:1c:
f8:e3:07:75:7a:7d:bb:0a:16:7d:c9:b0:2c:53:84:98:9e:ec:
18:66:95:92:28:cc:50:9c:fc:83:86:95:2f:91:55:c9:c8:4a:
27:0c:f2:58:5a:69:ee:6c:69:a1:61:65:52:95:43:42:5f:c7:
fd:cd:8e:16:55:23:e6:cc:9e:56:8b:9f:c2:0f:0e:89:49:43:
41:91:21:51:b8:74:90:18:73:6f:5e:16:6c:ff:ba:e8:e9:03:
62:cc:0c:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:57 2024 by rpki-client on console-fra.rpki-client.org